[decade] An open issue for "An HTTP-based DECADE Resource Protocol".
Wangdanhua <wangdanhua@huawei.com> Sat, 25 August 2012 09:37 UTC
Return-Path: <wangdanhua@huawei.com>
X-Original-To: decade@ietfa.amsl.com
Delivered-To: decade@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2613F21F8466 for <decade@ietfa.amsl.com>; Sat, 25 Aug 2012 02:37:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.759
X-Spam-Level:
X-Spam-Status: No, score=-4.759 tagged_above=-999 required=5 tests=[AWL=1.839, BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IQIx7EYlIN75 for <decade@ietfa.amsl.com>; Sat, 25 Aug 2012 02:37:49 -0700 (PDT)
Received: from dfwrgout.huawei.com (dfwrgout.huawei.com [206.16.17.72]) by ietfa.amsl.com (Postfix) with ESMTP id 5FEA221F8464 for <DECADE@ietf.org>; Sat, 25 Aug 2012 02:37:49 -0700 (PDT)
Received: from 172.18.9.243 (EHLO dfwdlp03-ep.huawei.com) ([172.18.9.243]) by dfwrg02-dlp.huawei.com (MOS 4.3.5-GA FastPath) with ESMTP id ALT00119; Sat, 25 Aug 2012 01:37:47 -0800 (PST)
Received: from DFWEML406-HUB.china.huawei.com (10.193.5.131) by dfweml201-edg.china.huawei.com (172.18.9.107) with Microsoft SMTP Server (TLS) id 14.1.323.3; Sat, 25 Aug 2012 02:29:44 -0700
Received: from SZXEML428-HUB.china.huawei.com (10.72.61.36) by dfweml406-hub.china.huawei.com (10.193.5.131) with Microsoft SMTP Server (TLS) id 14.1.323.3; Sat, 25 Aug 2012 02:29:51 -0700
Received: from SZXEML507-MBS.china.huawei.com ([169.254.7.120]) by szxeml428-hub.china.huawei.com ([10.72.61.36]) with mapi id 14.01.0323.003; Sat, 25 Aug 2012 17:29:46 +0800
From: Wangdanhua <wangdanhua@huawei.com>
To: "DECADE@ietf.org" <DECADE@ietf.org>
Thread-Topic: An open issue for "An HTTP-based DECADE Resource Protocol".
Thread-Index: Ac2CpCj8fl0YRwWDTHeBcwdmL2UFSA==
Date: Sat, 25 Aug 2012 09:29:46 +0000
Message-ID: <AFD688AF30E249418739DBDC55B9C75B34D77B27@SZXEML507-MBS.china.huawei.com>
Accept-Language: zh-CN, en-US
Content-Language: zh-CN
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-cr-hashedpuzzle: dy0= A9aG B0Gl CC7E CtV9 EcFD EmUH FC9Q FjDx GtBn HE2r IgV1 I7GX I+Ig Kxbd LYBr; 1; ZABlAGMAYQBkAGUAQABpAGUAdABmAC4AbwByAGcA; Sosha1_v1; 7; {E9B3B976-DF7E-46BC-AB8E-6F745C05E85B}; dwBhAG4AZwBkAGEAbgBoAHUAYQBAAGgAdQBhAHcAZQBpAC4AYwBvAG0A; Sat, 25 Aug 2012 09:29:43 GMT; QQBuACAAbwBwAGUAbgAgAGkAcwBzAHUAZQAgAGYAbwByACAAIgBBAG4AIABIAFQAVABQAC0AYgBhAHMAZQBkACAARABFAEMAQQBEAEUAIABSAGUAcwBvAHUAcgBjAGUAIABQAHIAbwB0AG8AYwBvAGwAIgAuAA==
x-cr-puzzleid: {E9B3B976-DF7E-46BC-AB8E-6F745C05E85B}
x-originating-ip: [10.138.41.177]
Content-Type: multipart/alternative; boundary="_000_AFD688AF30E249418739DBDC55B9C75B34D77B27SZXEML507MBSchi_"
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Subject: [decade] An open issue for "An HTTP-based DECADE Resource Protocol".
X-BeenThere: decade@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "To start the discussion on DECoupled Application Data Enroute, to discuss the in-network data storage for p2p applications and its access protocol" <decade.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/decade>, <mailto:decade-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/decade>
List-Post: <mailto:decade@ietf.org>
List-Help: <mailto:decade-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/decade>, <mailto:decade-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 25 Aug 2012 09:37:50 -0000
Hi all, The following is one of the open issues left for "An HTTP-based DECADE Resource Protocol" (draft-wang-drp). We're looking forward to your opinions and comments. As to access and resource control, we authors once had several candidate protocols in our mind, they are Kerberos, AAA, and OAuth. 1. During the latest DECADE WG meeting in IETF 82nd Taipei, we realized that Kerberos isn't the right solution for resource control, since it works on the basis of "tickers" to allow nodes to prove their identity to one another in a secure manner. 2. As to AAA, it is mainly used in management environment. Extending the binary-value-pairs may be possible to grant network resources for data access, but a text-based protocol may be preferred. 3. OAuth 2.0 is used to grant access to the resource owner's resources from a third party without explicitly exposing the resource owner's credentials. Certain grant types can be extended for access and resource control in DECADE. In summary, we believe that OAuth2.0 seems to be the most suitable protocol for DECADE access and resource control till now. Maybe it's time for us to write a protocol using OAuth 2.0 and see what problems we may meet. Thanks a lot. Best wishes, Danhua Wang
- [decade] An open issue for "An HTTP-based DECADE … Wangdanhua
- Re: [decade] An open issue for "An HTTP-based DEC… Songhaibin
- Re: [decade] An open issue for "An HTTP-based DEC… Hongqiang Harry Liu